Item Search

Name	Audit Name	Plugin	Category
1.2 Install only required packages	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix	CONFIGURATION MANAGEMENT
1.5 Ensure the Latest Security Patches are Applied	CIS PostgreSQL 14 DB v 1.2.0	PostgreSQLDB	SYSTEM AND SERVICES ACQUISITION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.6 Verify That 'PGPASSWORD' is Not Set in Users' Profiles	CIS PostgreSQL 14 OS v 1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use	CIS PostgreSQL 14 OS v 1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.7 Verify That the 'PGPASSWORD' Environment Variable is Not in Use	CIS PostgreSQL 13 OS v1.2.0	Unix	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
1.10.11 Ensure 'logging trap severity ' is greater than or equal to '5'	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
3.1.5 Ensure the filename pattern for log files is set correctly	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.5 Ensure the filename pattern for log files is set correctly	CIS PostgreSQL 16 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 12 DB v1.1.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 9.6 OS v1.0.0	Unix	ACCESS CONTROL
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 11 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 15 DB v1.1.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 10 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
4.2 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 16 DB v1.0.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 13 DB v1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 14 DB v 1.2.0	PostgreSQLDB	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
4.3 Ensure excessive administrative privileges are revoked	CIS PostgreSQL 9.5 OS v1.1.0	Unix	ACCESS CONTROL
4.4 Scan and rebuild the images to include security patches	CIS Docker 1.13.0 v1.0.0 L1 Docker	Unix	CONFIGURATION MANAGEMENT
7.1 Ensure 'Symmetric Key encryption algorithm' is set to 'AES_128' or higher in non-system databases	CIS SQL Server 2014 Database L1 DB v1.5.0	MS_SQLDB	SYSTEM AND COMMUNICATIONS PROTECTION
9.1 Ensure Replication Traffic is Secured	CIS MariaDB 10.6 Database L1 v1.1.0	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1 Ensure Replication Traffic is Secured	CIS MySQL 5.7 Community Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1 Ensure Replication Traffic is Secured	CIS MySQL 8.4 Enterprise v1.0.0 L1 Database	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1 Ensure Replication Traffic Is Secured	CIS MySQL 5.7 Enterprise Windows OS L1 v2.0.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1 Ensure Replication Traffic is Secured	CIS Oracle MySQL Community Server 8.4 v1.0.0 L1 Database	MySQLDB	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
9.1 Start and Stop DB2 Instance	CIS IBM DB2 v10 v1.1.0 Linux OS Level 1	Unix
9.1 Start and Stop DB2 Instance	CIS IBM DB2 v10 v1.1.0 Windows OS Level 1	Windows	ACCESS CONTROL
9.1 Start and Stop DB2 Instance	CIS IBM DB2 v10 v1.1.0 Windows OS Level 2	Windows	ACCESS CONTROL
9.1 Starting Tomcat with Security Manager	CIS Apache Tomcat 9 L1 v1.2.0 Middleware	Unix	CONFIGURATION MANAGEMENT
Ensure 'console session timeout' is less than or equal to '5' minutes	Tenable Cisco Firepower Best Practices Audit	Cisco	ACCESS CONTROL
Ensure 'Failover' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'logging buffered severity ' is greater than or equal to '3'	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'logging to Serial console' is disabled	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'logging with timestamps' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'noproxyarp' is enabled for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'RIP authentication' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'syslog hosts' is configured correctly	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure DHCP services are disabled for untrusted interfaces - dhcpd	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure DHCP services are disabled for untrusted interfaces - dhcprelay	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure DNS services are configured correctly - name-server	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
Ensure ICMP is restricted for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure non-default application inspection is configured correctly	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND INFORMATION INTEGRITY
EP11-00-003210 - EDB Postgres Advanced Server software modules, to include stored procedures, functions, and triggers must be monitored to discover unauthorized changes.	EDB PostgreSQL Advanced Server v11 DB Audit v2r4	PostgreSQLDB	CONFIGURATION MANAGEMENT
EPAS-00-004700 - The DBMS must map the PKI-authenticated identity to an associated user account.	EnterpriseDB PostgreSQL Advanced Server OS Linux v2r1	Unix	IDENTIFICATION AND AUTHENTICATION
PPS9-00-002700 - The audit information produced by the EDB Postgres Advanced Server must be protected from unauthorized modification.	EDB PostgreSQL Advanced Server OS Linux Audit v2r3	Unix	AUDIT AND ACCOUNTABILITY
PPS9-00-002900 - The EDB Postgres Advanced Server must protect its audit features from unauthorized access.	EDB PostgreSQL Advanced Server OS Linux Audit v2r3	Unix	AUDIT AND ACCOUNTABILITY
PPS9-00-003100 - The EDB Postgres Advanced Server must protect its audit features from unauthorized removal.	EDB PostgreSQL Advanced Server OS Linux Audit v2r3	Unix	AUDIT AND ACCOUNTABILITY
Tenable_Best_Practices_Cisco_Firepower_Management_Center_OS.audit	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix
vCenter: vcenter-8.administration-sso-password-policy	VMware vSphere Security Configuration and Hardening Guide	VMware	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search